Database Reference
In-Depth Information
Figure 11-16.
Access Control list
Figure 11-17.
Entry Details page
The Access Control list is somewhat sensitive to the authentication scheme that is
used. When you use SSO, LDAP, or a custom authentication scheme, the Access Con-
trol list is mandatory. In this context, it's easy to understand and build. You build the
Access Control list as a duplicate of the list of users in the authentication scheme. The
hook between the two lists is the username. The websheet username must match the
user ID in the authentication scheme.
When you use the Application Express Account authentication scheme, things get a
little harder to understand. In this instance, using the Access Control list is optional.
Because the websheet is inside an Application Express workspace, the websheet can
directly use the existing APEX user accounts. The websheet privileges are inferred
from the APEX user account privileges.
Table 11-2
illustrates the translation between
the APEX workspace privileges and the websheet privileges. You can override the de-
fault translation by adding the APEX users to the Access Control list. For example, you
might want an APEX workspace administrator to have the reader privilege on a given
websheet. To do this, you add the APEX workspace administrator's ID to the Access
Control list and set the privilege to reader.
